CVE-2022-33910

Name of the Vulnerable Software and Affected Versions MantisBT versions prior to 2.25.5

Description The issue allows remote attackers to attach crafted SVG documents to issue reports or bugnotes. When a user or an admin clicks on the attachment, file download.php opens the SVG document in a browser tab instead of downloading it as a file, causing the JavaScript code to execute.

Recommendations For versions prior to 2.25.5, update to version 2.25.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the file download.php endpoint to minimize the risk of exploitation. Avoid opening attachments from untrusted sources until the issue is resolved.